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Dear Sir: 

We, Michael S. Borella, residing at 1208 Haverhill Circle , Naperville, Illinois 60563, 
and Nurettin Beser, residing at 1781 Karameos Dr. Sunnyvale, CA, 94087, hereby declare: 



25 1 . We are the original and joint inventors of the subject matter in the United States 

Patent Application Serial No. 09/51 1,735, filed on February 24, 2000, and entitled, "Method and 
Application Programming Interface for Assigning Multiple Network Addresses." 




2. The inventions disclosed in the above-captioned patent application were conceived 



30 cooperatively by Michael S. Borella and Nurettin Beser at least as early as October 5, 1999. 



3. Accompanying this Declaration is Exhibit 1, which contains photocopies of an 



Invention Disclosure Form that was prepared and dated prior to October 5, 1999 and illustrates an 



initial conception of our inventions. 

McDonnell boehnen 1 
hulbert & berghoff llp 
300 south wacker drive 
chicago, il 60606 
telephone (312)913-«)01 



initial conception of our inventions. 



35 



4. The dates from Exhibit 1 have been redacted. However, the dates of Exhibit 1 are 
at least on or before October 5, 1999. 



5. The inventions disclosed in the above-captioned patent application were conceived 
40 at least as early as October 5, 1999 and constructively reduced to practice at least as early as 
February 24, 2000. 



Our inventions were conceived and diligently reduced to practice in the United 



States. 



7. We hereby declare further that all statements made herein of our own knowledge 
are true and that all statements made on information and belief are believed to be true; and 
further that these statements were made with the knowledge that willful false statements and tbe 
like so made are punishable by fine or imprisonment, or both, under Section 1001 of Title IS of 
50 the United States Code and that such willful false statements may jeopardize the vaUdity of the 
application or any patent issuing thereon. 



Date: 



Signed: 
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Date: 



MeOONNEU. BOEHKTEM 
HliLBERT& BEftCHfiFF 
300 SOUTH WACKER DRIVE 



Signed; 



Nijrettin Beser 
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4. The dates from Exhibit 1 have been redacted. However, the dates of Exhibit 1 are 
at least on or before October 5, 1 999. 

5. The inventions disclosed in the above-captioned patent application were conceived 
40 at least as early as October 5, 1999 and constructively reduced to practice on February 24, 2000. 

6. Our inventions were conceived and diligently reduced to practice in the United 

States. 

45 7. We hereby declare further that all statements made herein of our own knowledge 

are true and that all statements made on mformation and belief are believed to be true; and 
further that these statements were made with the knowledge that willful false statements and the 
like so made are punishable by fine or imprisonment, or both, under Section 1001 of Title 18 of 
the United States Code and that such willful false statements may jeopardize the validity of the 

50 application or any patent issuing thereon. 
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Date: lU 1^ ■ ^ OO ^ 



Signed: 



Michael S, Borella 



Signed: 
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Location of mneeotion 3Com Rolling Meado 



3. Conception of the Invention 

Date of conception: 

Date of first written description: ; ". 

Location of such first description 3Com Mt Prospect Page(s): ^ 

Please attach copies of all pertinent lab notet^oks or equivatant They should be signed, dated and witnessed by t«o other 
people who have read and understood the description of the invention. 




^S^^^S^^^^^^'^"'^^°'' '"^'^'y ^'^ with evidence such as worthing models, prototypes or 
simulations. Reduction to practice is not necessary to file a patent application. 
Date of any such demonstration: none planned 

date/planned date of demonstration 

Location of demonstration: 




MHKH™™ ^ay affect COMPANTs right to patent the invention. Submit 



To which division or operation does this invention best apply? 


Client software 


Reld of technology (e.g., manufacturing, switches, hubs, 
routers, network management software, adapters, etc.) 


Adaptors, Interfaces 


Project name and description: 




Product name and model number 




Does this invention relate to an actual or 
proposed standard or defacto standard? 


□yes -{nameofstd.) 


Please list docket numbers of all other invention 
disclosures that are related to this one: 




Estimated/actual date of first public release or 
showing of invention or product incorporating or 
jising the invention: 




Estimated/actual manufacturing release date of 
invention or product incorporating or using the 
invention: 




Estimated/actual date of offer for sale of 





Tte cbopn^i amtame inforvuiticn which is propri^ry and amfidentud to 3Com end shall not be duplicated oritpUadfardistrilmtim 
r^aS^sZ^oJilfarmation in vmJnlrMfonn O^uld fer dirccled to Advanced Technologies, Carrier System Bt^ess Umi, 3Cam. 



^.u ■ ^ <M^H rnMPANVs riaht to patent the invention. Submit this form even if 
Publication of a description of the invention may affect COIWiPANVs ngni u> p 

publication has occurred. , kti v n 

Has a description been published or is it scheduled to be published? No Yes U 

If "Yes," when and to vi/hom? _ — 

Has a description been disclosed or is it scheduled to be disclosed? No Yes □ 
If "Yes," when and to whom? 



Was a Non-Disclosure Agreement used? NoQ YesQ 
If "Yes," please attach copy. 




Was this invention made under a government agency contract? No^ YesQ 
If -Yes," government agency contract number. , . 




\Nas this invention jointly developed with inventors from another company? No ^ Yes □ 
If 'Yes," please identify the company and/or non COMPANY inventors: 



Was the invention tested, constructed or conceived pursuant to the performance of a development contract with 
another company? NoQ YesQ 

If "Yes." please identify the contract and its location: 




Is this invention an improvement of an existing COMPANY product? No □ Yes □ 

If "Yes," identify the existing product 

Closest known related art ("prior arf ): _ 

What was the problem to be solved? 



How had others attempted to solved it before you? 

What were the problems or disadvantages with prior solutions? 




indicate any key words {preferably at least 3) we could use to search Application programming mterfaces. 
for related art or identify this invention for use in our own database. _virtual TCP/IP interfaces 




List any printed publications, patents, patent applications or any other 
materials you are aware of wrtiich provides background material 
and/or prior art for your invention 



Thas 

regarding the 



4£J UXO 

c5 4S^ 



Describe the Structure, function and/or method of the invention 1 just e^^^ detail to enable someone technical to 
understand your invention. Stress the fundamental principle of the new idea from an engineering standpoint Attach all 
the relevant descriptive materials. You should reference/include any drawings/sketches that will help explain the 
invention. 




Please submit clear drawings and/or sketches which illustrate the invention either by electronically inserting them 
into Section 12 or using the supplemental sheets if you can't easily electronically insert them. 




Is this a licensable technology? No □ Yes ^ Don't know □ 

If "Yes." name the fields in which this might be licensed: 
If "Yes," name the companies which may possibly be interested; 




If there is a particular patent attorney with whom you would like to work on this disclosure, 
suggest his/her name. 



TTiis Invention Disclosure Form is submitted pursuant to your employment agreement with COMPANY. Use a 
Supplemental Sheet if there are more than 5 inventors. Please sign and date below and be certain that each page 
of this disclosure has been initialed by each inventor. 
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Signature: . 
Signature; , 
Signature: , 
Signature: 



Date: . 

Date:. 

Date: 

Date: 

Date: 



77ii5 docujntnt contains infirrmation which is ptyprictary and confidential ta 3Com and shall not be duplicated or r^hxctdfar distribution. Questions 
regarding the sJiarhtg of information in written or verbal Jorm shmdd be directed to Advanced Technologies, Carrier Systems Business Unit. 5Com. 
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TTis i, . SUPPLEMENTAL INFORMATION SHEET » b. u«d to provvte ^JdWon.! MonMSw. residing ft» invento 

disclosure referenced above. 



Item 



Per-Applicatloii Virtaal Interfaces f er TCP/IP Network Hosts 



Abstract 

Qinently a TCP/IP stack differentiates applications on the transport layer, typically with port nmnbws. In some scenarios, it 
^^l^l^^^diScc^^v: applications based on a networic-layer identifier; U.. an IP addr«^. In thisdocumen^ 
dSbe for per-application virtual mterfaces can be added to a TCP/IP stack, and how the socket API can be modified 

for their support. 



Revised 
Authors 



3C01D 
1800 West 

Central Rd 



™. dncumcni contmns mformation which is proprietary and cofifidmtM to 3Com and shall not be duplicated or rtpjamdfirdistnbiition. (^^^ 
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IDF Docket No. 



i^'^^^iv hi!!TCP/IP stacks allow a single host to support multiple physical and logical data-link interfaces. A data-link 
Currently host TCP/IP smcks auow a sm^ that oennits a host to coiranunicaie with some entity. For example, an 

interfece. ^^.P^^" are examples of data-lhik interfaces. THese 

^tres^^^S^er^a^d:^^^^^ ^ J 'ZTfT ^..^^^ ^d 

interlaces may uc wiuis^i - . ^ * * Cm- *>YaTnnle an Ethemet interface consists of the Etnemet caro 

•^^tj^tuz ^-^^^i:^ r^^TJ^ t 

and a loopbaek are shown in Figure I. 



cthO L5nkencap:Ethemet HWaddr00:60:97:5F:lE:DA 

inetaddr:149.ll2.60.14 Bcast:149.ll2.60.25S Mask:2S5.255.255.0 

lo Link encqj:Local Loopbaek 

inetaddrl27,O.0.1 Mask:255.0.0.0 



Figure 1: Example data-link interfaces. 

Data-link interfeces repiesem an IP address fliat is bound to a data-link device. For example, in Figure 1, the Ethemrt data- 
f^i^^ is Sound to IP address 149.112.60.14. All communication via these int^es .^^-^^^-f^"; 
SL^n^ calU to the socket application programming interface (API). Hie socket layer exists logical above the transport 

textbooks. 

In new and emerging communication systems, it will be advantageous to aUow per-application virtal date-link interfaces 
ffA^^»Us) A^U is different from atiaditional data-link inteifce in that it represents an IP addtess that 'S bound to a 
^^^c^g uLnce of an appUcation (e.g., a process or related group of processes). Thuj mo« dian ^^J^^^^-^^ 
SITto the same physical or togical data-link device, but will only send and receive data on behalf of a smgle application. 

PAVDU's will be useful for differentiating IP data traffic to or from a particular host based on something o&er dian a 
MOTt-Uyer parameter such as a TCP or UDP port. TTie particular appUcation that we consider is a host dedicated to 
SrttelSy or multimedia services that resides behind a dual NAT (see below). Due to the feet «hat multple sessions 
»Te sSlSrmust be assigned different IP addresses, we require a method and API ^^-^^^P^^f^^ ""^^^ ^ 
the same physical data-link interface, and being able to tell them apart from one another at the appUcation layer. 

Architecture 

A dual NAT architecture consists of one or more private IP address spaces comiected by a pubUc IP address J"; ^ 
Xhony enviromnent. it is desirable that user agents (hosts) reside only in the pnvate address spaces O e- 10^ so 
addresses are not umiecessarily depleted. THese hosts may take the fonn of broadband telephony mterfaces (BTls). 
which convert analog telephony signals from some number of RJ-1 1 jacks to packetized voice, and v,ce-versa. 

Our soal in specifying this architecmre is to provide an environment such that public IP addresses ^e never present on the 
^y^nZ^^XL a private host transmits to the public network, it uses a local private^IP address TJ^ ad to 
downed by the private n«work's edge router (ER). which is also a NAT. Hie NAT routers perform 'J^f « J^^j^^"™^^ 
NAT ki which no port translation is required, but both source and destination IP addresses are re-mapped for both outgomg 
^d ikcomS p'l^ts. When two ho^ on different private networks communicate, NAT is P^^^^^^^^.^ "^^ -^'^ 
Ae wckets leave ±e first private network, and again when the packets enter the second pnvate ne^«tfk. Call setup. 
t*LS^^Sng siJaliSg is facilitate through the use of gatekeepers (GK's) and back end servers (BES). An example 
architecture is show in Figure 3. 

Page 1 of . 

inventors' initials — [idf 2/1/97] 




Backend Servicas / Dalebasas 



Figure 3: Example architecture for dual NAT public/private network. 

Previous Work 

The solution presented here uses a number of concepts described in Internet Draft <draft-ietf-nat.termmology-i 
particular, Traditional NAT, Two-Way NAT and Twice-NAT. 



Terminology 

We use the following teiminology in our diagrams and discussion. 

. BTI: Broadband Telephony Interfece. Customer premises equipment that performs A/D and D/A conversion of voice 
signals Provides one or more addresses in die private network space. , «r % 

. EBTlEdge Router. A layer-four router and NAT. which is located in on provider premises (e.g., a central office). 
Contains multiple private and public addresses and serves as a transparent gateway between die two address spaces ^ 

. GK. Gatekeeper. Each gatekeeper is in charge of some number of edge routers. Gatekeepers commmucate with one 
anodier using a signaling protocol, such as SIP or HJ23, in order to set up and tear down calls. An edge router cannot 
open a media stream to another edge router without being instmcied to do so by a gatekeeper. 

. BES' Back end servers. An array of servers, possibly replicated throughout the VoIP network, thai form « '»fj*uied 
database. The mfonnation that they contain inchides customer records, billing data, and location services. A BTI must 
register itself with tiie BES before can be located by tiie network. 

Stack Modifications 

In order to support PAVDLls, host TCP/IP stacks must be modified to be able to support multiple IP addresses per intaface, 
as well as the concept of ephemeral addresses. Furthemore, the stacks must be able to be assigned these addr^s 
dynamicaUy through a mechanism such as DHCP or IPCP. Alternatively, static assignment of addresses may occur. When 
a user application requests a new address to use, the stack must be able to request the address from a server, receive an 
address assignment, and associate that address with die socket 



This doaimait contains injonnatimt whkk is jnvprieton, and confidential to 3Q»» and shall rwt 6e duplicaltd or n^huy^ft^Mutioa Qwstians 
regarding the sharing afinjonnaiion in vnihai or verbal Jbrm should bt directed to Advanced Tedmologies, Comer Systems Business Unit, 30m. 




IP Address 



Data Dnk driver & 
device 



Figure 5: Current TCP/IP stack implementation. 

Fieuit S shows Ibe TCP/IP stack implementation that is used in many operating systems. One or more processes may each 
open one or more sockets. Each socket consists of source and destination IP addresses, as well as source and destmanon 
poita Each of the IP addresses in flie sockets are actuaUy pointers to the host's IP address, which in turn is bound to a data- 
link bterfece. TTiese IP addresses may be static or can be chosen by the kernel based on a routing decision - based on 
which interface the data will egress from. Figure 6 shows the TCP/IP implementation that would be used widi PAVDLIs. 
Each sodset may use a different IP address, and all IP addresses may be bound to the same mterfece. 



ms documni conbnns infoTTttatim which is prvprkbtry and amfidenlud to 3Com and shall nnt be dupliailed or replaadfiir distribution. &taUons 
regardins the iharing of information in wriuen or -ottbalfom should be direcled to Adoaticed Tedmologiis, Carrier Systems Btteauss Unit, 3Com. 





Data link driver & 
device 



Figure 6: TCP/IP implementation for PAVDLL 



API Modifications 

TK<.c.r«*ir*^ APT must be modified so that users of PAVDLb can do the foUowing: 

? a aTss be allocated for a particular socket lUis can be done via mod^ficanons to the socketQ 

. Sea^ IP address to the socket. This would requfre modifications t^ 

: l^ed on^ identifier, d^e the value of the IP address associated w.th the socket. Tlus will requ« 

modifications to the getsocknameO fiinction. 
All other socket functions will remain the same. 

Modifications to soclcetQ 

The socketO system call is currently defined to take three parameters: 
• Address family: AFJNET, AF_INET6. 

. Type:SOCK_STREAM.SOCK_DGRAM.SOCK_RAW. ^^^^r, 

m Protocol- TvDicallvO except for raw sockets (i.e., sockets With a type of SOCK_RAW)- , . ^ ^. 

^i,.2r«Lt SfiersuSi that the stack is infarmed that a new IP address is to be used with th« socket. A new 

^Huld Ste^n. or a new address family, such as AF_INET_PAVDLI could be define that acts 



J * *^«c /„ tnhiSi k vroBrietiav and confidnithil to 3Cam and shall not he dupliaOzd or replaced Jbr disiribution. Questions 



idMticlly to Af .INET, e«ept a« » AF.tNET.PAVDLl socka is opened, *e mck mrie* . «e« IP address ftom 
an address server. 

Modifications to bindO , ^ 

TT,e bindO system call is typically used by server, and UDP clients It is currently defined to take three parameters: 

• Socket identifier: The socket identifier returned from a socketQ caU. 

• Socket address structure: An IP address and a port number. 

• Socket address sirucnire length: The size in bytes ofthe socket address strucrire. - „ 

Serv^icaiV^PPly a >veU-l^wn pon number to the socket address structure, but leave the IP adctess pomon empty so 
STSSSn^U it in. This is re^nable when a host only uses a single IP address, or when just one of Ac hos^ s IP 
S^^t^er/be published with fte server. UDP clients must also bind an -^^l^^!"'^-^:^'^^^ p^^^I 
Solo by leaving both die IP address field and the port field blank, so that they can be fiUed m by the stack. The PAVDLI 
bindO call must always use the IP address associated with the socket identifier. 

lUlodifications to connectQ 

The comiectO system call is typically used by both TCP and UDP clients to have the stack allocate an IP address and an 
ephemeral port It is currently defined to take three parameters: 

• Socket identifier. The socket identifier returned fitnn a socketQ call. 

. Socket address stnicnire: An IP address and a port number of the server to contact 

. Socket address structure lengdi: The size in bytes ofthe socket address structure. ^ u 

; c^S^S^S l^tTs .Wetely up to the stack to ddemiine ±c local IP.adJess and l>o^^-J^^^-^' 
coTeoO call mt^ modified, like the bindQ call, to always use the IP address associated wrth the socket identifier. 

ModifiGations to getsocltnameO . ^ _ 

The getsocknameO system caU is used by an application to determine the local IP address and port used m a socket It is 
currently defined to take three parameters: 

• Socket identifier The socket identifier returned from a socketQ caU. 

• Socket address sBuctuie: An IP address and a port number. 

• Socket address structure length: The size in bytes ofdie socket address stmcnire. . ^ . . 
iJgioc^^TcaUedTstack fills in the socket address structure with the IP address and port ftat u; being used. 
T^gSSSTocaU must be modified so that it always returns the IP address that has been associated with the socket. 
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